EXTENSIBLE CONFIGURATION SYSTEM TO ALLOW A WEBSITE TO AUTHENTICATE USERS BASED ON AN AUTHORIZATION PROTOCOL

US 20160044019A1
Filed: 10/23/2015
Published: 02/11/2016
Est. Priority Date: 10/10/2012
Status: Active Grant

First Claim

Patent Images

1-20. -20. (canceled)

View all claims

2 Assignments

Timeline View

Assignment View

0 Petitions

Accused Products

Abstract

An extensible configuration system to allow a website to authenticate users based on an authorization protocol is disclosed. In some embodiments, the extensible configuration system includes receiving an identifier for an authentication provider; and automatically configuring a website to use the authentication provider for logging into the website.

2 Citations

40 Claims

1-20. -20. (canceled)

21. A computer-implemented method for configuring a web site to authenticate users based on authentication providers, the computer-implemented method comprising:
- generating, at a web authoring platform hosting the web site, an application configured to connect the web site with an authentication provider;
  
  receiving, at the web authoring platform, an application identifier of the application and a secret associated with the authentication provider; and
  
  generating, at the web authoring platform, a web page of the web site, the web page configured to login a user based on a user login identity and a password corresponding to an account of the user with the authentication provider, wherein logging the user into the web page comprises;
  
  providing the application identifier, the secret, the user login identity, and the password to the authentication provider, andreceiving an authentication of the user from the authentication provider based on the application identifier, the secret, the user login identity, and the password.
- View Dependent Claims (22, 23, 24, 25, 26, 27)
- - 22. The computer-implemented method of claim 21, further comprising:
    - receiving profile data of the user from the authentication provider based on the authentication of the user; and
      
      personalizing the web page based on the profile data.
  - 23. The computer-implemented method of claim 21, further comprising setting up an authentication handler at the web authoring platform to handle an authentication workflow of the authentication provider, and wherein the application is generated based on the authentication handler.
  - 24. The computer-implemented method of claim 21, wherein the application is generated based on a pluggable service of the web authoring platform.
  - 25. The computer-implemented method of claim 21, wherein the web authoring platform comprises an authentication configuration engine configured to authenticate the user based on an authentication workflow of the authentication provider and a social connect engine configured to personalize content of the web site for the user based on social profile data available from the authentication provider.
  - 26. The computer-implemented method of claim 25, wherein the authentication configuration engine comprises an authentication handler configured to handle the authentication workflow of the authentication provider and an authentication service configurator configured to communicate with the authentication provider to authenticate the user based on the application identifier and the secret.
  - 27. The computer-implemented method of claim 25, wherein social connect engine comprises a client context engine configured to access authorized user profile data of the user from the authentication provider.

28. A computer system, comprising:
- a processor; and
  
  a memory comprising computer readable instructions that, when executed with the processor, cause the system to provide a web authoring platform, wherein the web authoring platform is configured to;
  
  generate an application configured to connect a web site with an authentication provider;
  
  receive an application identifier of the application and a secret associated with the authentication provider; and
  
  generate a web page of the web site, the web page configured to login a user based on a user login identity and a password corresponding to an account of the user with the authentication provider, wherein logging the user into the web page comprises;
  
  providing the application identifier, the secret, the user login identity, and the password to the authentication provider, andreceiving an authentication of the user from the authentication provider based on the application identifier, the secret, the user login identity, and the password.
- View Dependent Claims (29, 30, 31, 32, 33, 34, 35, 36)
- - 29. The computer system of claim 28, wherein logging the user further comprises requesting access to a resource of the authentication provider based on the application.
  - 30. The computer system of claim 28, wherein logging the user further comprises requesting an action to be performed at the authentication provider on behalf of the user based on the application.
  - 31. The computer system of claim 28, wherein the web authoring platform is further configured to associate the user with a group of the users based on the authentication provider and to personalize content of the web site for the user based on the group of the users.
  - 32. The computer system of claim 28, wherein the web authoring platform comprises a first authentication service and a second authentication service associated with the authentication provider, wherein the first authentication service is configured to authenticate the user for access to a first portion of the web site based on requesting a first set of social profile data of the user from the authentication provider, wherein the second authentication service is configured to authenticate the user for access to a second portion of the web site based on requesting a second set of the social profile data from the authentication provider, and wherein the first set and the second set are different.
  - 33. The computer system of claim 28, wherein the web authoring platform comprises a first authentication service based on the application and a second authentication service based on a second application associated with a second authentication provider, wherein the first authentication service is configured to authenticate the user based on the authentication provider, and wherein the second authentication service is configured to authenticate the user based on the second authentication provider.
  - 34. The computer system of claim 33, wherein the first authentication service is configured to login the user to a first portion of the web site, and wherein the second authentication service is configured to login the user to a second portion of the web site.
  - 35. The computer system of claim 28, wherein upon an authentication of the user, the web authoring platform is further configured to:
    - receive a token from the authentication provider indicating a resource of the authentication provider accessible to the web authoring platform;
      
      access the resource based on the token to receive social profile data of the user; and
      
      generate a user profile for the user based on the social profile data.
  - 36. The computer system of claim 35, wherein content of the web site is personalized for the user based on the user profile.

37. A computer-implemented method for configuring a web site to authenticate users based on authentication providers, the computer-implemented method comprising:
- generating, at a web authoring platform, an application configured to connect the web site with an authentication provider;
  
  receiving, at the web authoring platform, an application identifier of the application and a secret associated with the authentication provider; and
  
  generating, at the web authoring platform, an authentication service based on the application, the authentication service configured to authenticate the user to access a portion of the web site based on providing the application identifier and the secret to the authentication provider and receiving an authentication of the user from the authentication provider.
- View Dependent Claims (38, 39, 40)
- - 38. The computer-implemented method of claim 37, wherein the authentication service is associated with a web page of the web site, wherein the web page is configured to login the user based on a user login identity and a password corresponding to an account of the user with the authentication provider.
  - 39. The computer-implemented method of claim 37, wherein the authentication service is further configured to request access to a resource of the authentication provider on behalf of the user.
  - 40. The computer-implemented method of claim 37, wherein the authentication service is further configured to request an action to be performed at a resource of the authentication provider on behalf of the user.

Specification

Resources

Litigation Campaign Assessment

Current Assignee
Adobe Inc.
Original Assignee
Adobe Systems Incorporated (Adobe Inc.)
Inventors
Wilkes, Ryan, Trieloff, Lars, Meschberger, Felix, Norris, Tyson, Doshi, Pankil

Granted Patent

US 9,930,030 B2
Time in Patent Office

Days
Field of Search
US Class Current

1/1
CPC Class Codes

G06F 21/00   Security arrangements for p...

G06F 21/335   for accessing specific reso...

G06Q 30/0629   for generating comparisons

H04L 63/083   using passwords cryptograph...

H04L 63/0876   based on the identity of th...

H04L 63/0884   by delegation of authentica...

H04L 67/02   based on web technology, e....

H04L 67/306   User profiles

EXTENSIBLE CONFIGURATION SYSTEM TO ALLOW A WEBSITE TO AUTHENTICATE USERS BASED ON AN AUTHORIZATION PROTOCOL

First Claim

2 Assignments

0 Petitions

Accused Products

Abstract

2 Citations

40 Claims

Specification

Solutions

Use Cases

Quick Links

EXTENSIBLE CONFIGURATION SYSTEM TO ALLOW A WEBSITE TO AUTHENTICATE USERS BASED ON AN AUTHORIZATION PROTOCOL

First Claim

2 Assignments

Subscription Required

Subscription Required

0 Petitions

Subscription Required

Accused Products

Subscription Required

Abstract

2 Citations

40 Claims

Specification

Subscription Required

Solutions

Use Cases

Quick Links